{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-8073", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-07-23T04:37:25.369Z", "datePublished": "2025-08-28T06:42:34.857Z", "dateUpdated": "2026-04-08T16:41:55.781Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:41:55.781Z"}, "affected": [{"vendor": "plugincy", "product": "Dynamic AJAX Product Filters for WooCommerce", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.3.7", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Dynamic AJAX Product Filters for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018name\u2019 parameter in all versions up to, and including, 1.3.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "title": "Dynamic AJAX Product Filters for WooCommerce <= 1.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via name Parameter", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/23554f8a-9df4-483f-a929-4c5d76644cc2?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/dynamic-ajax-product-filters-for-woocommerce/tags/1.2.3/includes/filter-template.php#L1032"}, {"url": "https://wordpress.org/plugins/dynamic-ajax-product-filters-for-woocommerce/#developers"}, {"url": "https://plugins.trac.wordpress.org/changeset/3350071/"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "baseScore": 6.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Peter Thaleikis"}], "timeline": [{"time": "2025-08-26T14:50:14.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-08-27T17:41:28.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-08-28T13:35:35.744824Z", "id": "CVE-2025-8073", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-28T14:48:29.272Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-8073", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-08-28T13:35:35.744824Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-28T13:35:39.607Z"}}], "cna": {"title": "Dynamic AJAX Product Filters for WooCommerce <= 1.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via name Parameter", "credits": [{"lang": "en", "type": "finder", "value": "Peter Thaleikis"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "plugincy", "product": "Dynamic AJAX Product Filters for WooCommerce", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.3.7"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-08-26T14:50:14.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-08-27T17:41:28.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/23554f8a-9df4-483f-a929-4c5d76644cc2?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/dynamic-ajax-product-filters-for-woocommerce/tags/1.2.3/includes/filter-template.php#L1032"}, {"url": "https://wordpress.org/plugins/dynamic-ajax-product-filters-for-woocommerce/#developers"}, {"url": "https://plugins.trac.wordpress.org/changeset/3350071/"}], "descriptions": [{"lang": "en", "value": "The Dynamic AJAX Product Filters for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018name\u2019 parameter in all versions up to, and including, 1.3.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:41:55.781Z"}}}, "cveMetadata": {"cveId": "CVE-2025-8073", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:41:55.781Z", "dateReserved": "2025-07-23T04:37:25.369Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-08-28T06:42:34.857Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Dynamic AJAX Product Filters for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018name\u2019 parameter in all versions up to, and including, 1.3.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}, {"lang": "es", "value": "El complemento Dynamic AJAX Product Filters for WooCommerce para WordPress es vulnerable a cross-site scripting (XSS) almacenado a trav\u00e9s del par\u00e1metro \"name\" en todas las versiones hasta la 1.3.7 incluida, debido a una depuraci\u00f3n de entrada y un escape de salida insuficientes. Esto permite a atacantes autenticados, con acceso de colaborador o superior, inyectar scripts web arbitrarios en las p\u00e1ginas que se ejecutar\u00e1n al acceder un usuario a una p\u00e1gina inyectada."}], "id": "CVE-2025-8073", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-08-28T07:15:36.187", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/dynamic-ajax-product-filters-for-woocommerce/tags/1.2.3/includes/filter-template.php#L1032"}, {"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3350071/"}, {"source": "security@wordfence.com", "url": "https://wordpress.org/plugins/dynamic-ajax-product-filters-for-woocommerce/#developers"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/23554f8a-9df4-483f-a929-4c5d76644cc2?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-22T14:25:11.013015+00:00", "value": {"mitigation_remediation": ["Upgrade the Dynamic AJAX Product Filters for WooCommerce plugin to a version that includes the input sanitization and output escaping fixes (1.3.8 or later).", "Scan the database for any stored 'name' values containing script tags or suspicious JavaScript content and remove or properly encode them.", "Implement a site\u2011wide Content Security Policy that blocks inline scripts and restricts script sources to trusted origins to mitigate the impact of any remaining stored scripts."], "summary": {"action": "Apply Patch", "impact": "Stored Cross\u2011Site Scripting via authenticated Contributor\u2011level access"}, "threat_synthesis": {"affected_systems": "WordPress sites that have installed the Dynamic AJAX Product Filters for WooCommerce plugin, versions 1.3.7 and earlier. The attacker must possess at least Contributor access to the WordPress administrator interface to inject the payload.", "description_and_impact": "The Dynamic AJAX Product Filters for WooCommerce plugin is vulnerable to Stored Cross\u2011Site Scripting because the \u2018name\u2019 parameter is not correctly sanitized or escaped in all current releases up to 1.3.7. An attacker with Contributor or higher privileges can submit a malicious script that will be stored in the database and later executed whenever a user loads a page that displays the injected filter name. This flaw allows the attacker to carry out typical XSS attacks such as session hijacking, cookie theft, defacement, or the injection of additional malicious payloads.", "risk_and_exploitability": "The CVSS score of 6.4 signals a moderate severity, while the EPSS score of below 1\u202f% indicates a low likelihood of exploitation in the wild. The vulnerability is not yet listed in the CISA KEV catalog, suggesting it has not been widely exploited yet. Exploitation requires authentication, limiting the available attack surface to authenticated users with Contributor\u2011level permissions. However, once injected, the script runs in the context of all users who view the affected page, enabling the range of classic XSS consequences."}}}}, "created": "2026-04-22T14:30:18.960546+00:00", "updated": "2026-04-22T14:30:18.960557+00:00", "vendors": []}